Archive for John Leyden

Super-computers aren’t super-secure

US National Science Foundation flings US$5 million at scientific computing infosec

America's National Science Foundation is slinging US$5 million to help improve the security of scientific high-performance computing (HPC) infrastructure.…

Kiev airport goes dark after ‘BlackEnergy-linked’ power outage

No prizes for guessing who the prime suspect is

IT systems at Kiev's main airport were floored over the weekend, sparking a renewed warning from Ukraine's Computer Emergency Response Team (CERT-UA) about further BlackEnergy malware-based attacks.…

LastPass’s password-shuffling rival Dashlane gets a makeover

Also learns a few new languages

Dashlane last week unveiled a cross-platform redesign and support for five new languages with a redesign of its password management tool.…

KeysForge will give you printable key blueprints using a photo of a lock

Smartphone photo of lock keyways enough to produce ready-to-print CAD drawings

32c3  Hackers have been gifted with an online web service that can produce blueprints for 3D printed keys from nothing more than a photograph of a lock.…

LastPass in 2FA lock down after ‘fessing up to phishing attack

Password vault-plundering phishing bait lands on Github

Shmoocon  Cloud castle for passwords LastPass has introduced mandatory sign in requirements for all new devices after security researcher Sean Cassidy dropped code allowing criminals to plunder vaults with mirror-perfect phishing attacks.…

Updated Android malware steals voice two factor authentication

Unconditional call forwarding and silent mode means potent pwning.

Malware-makers are stepping up the assault on Android handsets and are now quietly redirecting phone calls to steal voice-based two factor authentication details.…

Zuck slapped down for privacy breaches in Germany again

Deutschland flak for Facebook's Friend Finder feature

The long-running dispute between Facebook and Germany's consumer watchdogs is all over, bar the shouting.…

PDF redaction is hard, NSW Medical Council finds out – the hard way

Actually, it's easy, you just have to pay attention

Australian public sector agencies have a persistent problem trying to redact PDFs: this time, the guilty party is the Medical Council of NSW.…

Trustwave failed to spot casino hackers right under its nose – lawsuit

And rival Mandiant sticks the boot in: 'Woefully inadequate' probe cited in court allegations

IT security biz Trustwave is being sued by a Las Vegas casino operator for allegedly bungling a hacking investigation. Trustwave denies any wrongdoing.…

Apple’s anti-malware Gatekeeper still useless: Security bloke reveals lingering holes

Did patch really tackle the underlying problem? A: No

Apple has flubbed attempts to patch flaws in OS X's anti-malware system Gatekeeper, leaving the defenses still easy to bypass.…